Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
File: HDRPEVl1lIgoU6eVgd0r94nusx8.mft (raw, json)
Hash identifier: FItu0CgcFWuqwWFIu/ERkf07Z8xyZuglR6usRL+iYU8=
Subject key identifier: 48:6C:53:47:6C:36:EE:10:B8:31:A2:09:10:6E:76:26:75:B1:5F:B2
Authority key identifier: 1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
Certificate issuer: /CN=1c344f11597594882853a79581dd2bf789eeb31f
Certificate serial: 0197B7EAA0091111CBAEAF783173585162F0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
Manifest number: 1389
Signing time: Sat 28 Jun 2025 19:01:36 +0000
Manifest this update: Sat 28 Jun 2025 19:01:36 +0000
Manifest next update: Sun 29 Jun 2025 19:01:36 +0000
Files and hashes: 1: HDRPEVl1lIgoU6eVgd0r94nusx8.crl (hash: WMeugqBo2r54V+lwF5lz9h56JjRy+4LUtRnjT1uhHmw=)
2: OLwYzj-fOtPupeVPjMakvIdCk14.roa (hash: w82sMMgD2hDeR96YGrYPpR7eSx7BTygOkVtPfhR7sSk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 29 Jun 2025 15:00:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:b7:ea:a0:09:11:11:cb:ae:af:78:31:73:58:51:62:f0
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=1c344f11597594882853a79581dd2bf789eeb31f
Validity
Not Before: Jun 28 19:01:36 2025 GMT
Not After : Jun 29 19:01:36 2025 GMT
Subject: CN=486c53476c36ee10b831a209106e762675b15fb2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:ee:c2:3d:01:9f:93:d8:df:e2:fe:57:ea:13:
99:69:8f:91:5c:8d:5e:74:02:ea:8b:32:05:0c:80:
be:8e:d2:4d:cd:c9:0d:c1:09:1a:f6:28:c8:73:8c:
f6:df:0c:58:3b:df:ee:20:48:9a:3a:62:cc:40:6f:
59:76:ac:47:15:bc:52:4e:69:a7:c8:cf:15:fd:8c:
7b:3c:80:79:d2:dd:72:c7:0a:8a:c4:9a:52:aa:66:
4b:bf:f8:82:04:7f:51:dd:29:8f:0d:7e:67:41:ee:
1a:73:1c:c7:bf:23:23:44:b6:c7:ac:08:07:e6:38:
01:d4:5b:af:fb:7d:8c:70:63:3f:70:f1:6b:e9:da:
50:3a:25:c6:e7:91:da:39:67:93:4b:e6:39:0b:5f:
b1:fb:5a:f6:09:29:33:42:a1:c8:25:ca:ab:bd:86:
d4:0d:cc:e8:71:f4:96:40:1c:5a:01:03:5d:5a:82:
ec:a6:c1:e2:36:20:c4:b6:55:f6:70:6f:1a:ec:82:
df:d1:aa:1f:eb:86:fe:1d:f7:c2:d0:14:e9:36:bc:
e1:5a:a6:18:90:b2:ca:d5:9e:c4:5c:ac:2c:36:a5:
e4:66:6b:63:01:d2:d4:54:c3:7e:0f:f2:50:b4:73:
f4:ef:f4:37:e2:de:df:a8:a1:8b:f3:ef:3d:36:23:
58:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
48:6C:53:47:6C:36:EE:10:B8:31:A2:09:10:6E:76:26:75:B1:5F:B2
X509v3 Authority Key Identifier:
keyid:1C:34:4F:11:59:75:94:88:28:53:A7:95:81:DD:2B:F7:89:EE:B3:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/HDRPEVl1lIgoU6eVgd0r94nusx8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/98/f06191-b0a8-4950-b027-deec6fcf2d95/1/HDRPEVl1lIgoU6eVgd0r94nusx8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
63:fa:7e:0e:09:4e:9a:0e:2c:93:c9:9f:c6:a6:c2:28:2f:3b:
0f:d3:6f:61:bc:70:60:ba:6b:d7:fe:51:a2:44:bb:c4:b4:15:
d1:75:13:1d:1b:50:f0:b1:b3:6a:23:7a:67:c3:4c:55:0a:aa:
25:3a:5f:6f:13:ff:f5:4f:53:4a:e7:f5:90:2a:6c:30:01:07:
8a:d3:53:05:6a:76:61:49:b3:0d:ba:0f:5d:54:a3:82:56:9a:
de:05:1c:c0:67:2c:66:48:1f:d3:2d:e0:76:7f:2b:4c:8f:a6:
92:b0:69:ad:cb:e3:2a:94:a0:25:09:4a:dc:85:fa:b6:10:26:
34:66:8b:04:31:4a:3f:18:c2:74:ad:40:11:7d:42:81:a9:e2:
20:b6:22:af:2d:6c:6d:c3:48:31:2e:aa:00:4c:62:17:5f:a2:
d4:0e:34:97:67:32:14:3e:dc:47:5e:b2:1a:50:cf:d0:70:d8:
f5:22:eb:d9:a9:eb:ca:1a:ac:66:68:53:d5:8e:3a:19:5e:56:
98:2a:c0:ac:4b:25:9f:82:16:8a:80:e6:a4:8b:98:f2:67:1f:
5f:73:5d:2c:98:57:24:1d:a8:47:66:c9:f4:ca:25:06:d6:f0:
7c:4e:31:c8:31:b4:71:26:6c:aa:b2:8a:8a:f0:b2:80:a9:f5:
cd:5f:20:75
-----BEGIN CERTIFICATE-----
MIIFFjCCA/6gAwIBAgISAZe36qAJERHLrq94MXNYUWLwMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDFjMzQ0ZjExNTk3NTk0ODgyODUzYTc5NTgxZGQyYmY3ODll
ZWIzMWYwHhcNMjUwNjI4MTkwMTM2WhcNMjUwNjI5MTkwMTM2WjAzMTEwLwYDVQQD
Eyg0ODZjNTM0NzZjMzZlZTEwYjgzMWEyMDkxMDZlNzYyNjc1YjE1ZmIyMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAze7CPQGfk9jf4v5X6hOZaY+RXI1e
dALqizIFDIC+jtJNzckNwQka9ijIc4z23wxYO9/uIEiaOmLMQG9ZdqxHFbxSTmmn
yM8V/Yx7PIB50t1yxwqKxJpSqmZLv/iCBH9R3SmPDX5nQe4acxzHvyMjRLbHrAgH
5jgB1Fuv+32McGM/cPFr6dpQOiXG55HaOWeTS+Y5C1+x+1r2CSkzQqHIJcqrvYbU
DczocfSWQBxaAQNdWoLspsHiNiDEtlX2cG8a7ILf0aof64b+HffC0BTpNrzhWqYY
kLLK1Z7EXKwsNqXkZmtjAdLUVMN+D/JQtHP07/Q34t7fqKGL8+89NiNYCwIDAQAB
o4ICIjCCAh4wHQYDVR0OBBYEFEhsU0dsNu4QuDGiCRBudiZ1sV+yMB8GA1UdIwQY
MBaAFBw0TxFZdZSIKFOnlYHdK/eJ7rMfMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvSERSUEVWbDFsSWdvVTZlVmdkMHI5NG51c3g4LmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC85OC9mMDYxOTEtYjBhOC00OTUwLWIwMjct
ZGVlYzZmY2YyZDk1LzEvSERSUEVWbDFsSWdvVTZlVmdkMHI5NG51c3g4Lm1mdDCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC85OC9mMDYxOTEtYjBhOC00OTUwLWIwMjctZGVlYzZmY2YyZDk1
LzEvSERSUEVWbDFsSWdvVTZlVmdkMHI5NG51c3g4LmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw
FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAY/p+DglO
mg4sk8mfxqbCKC87D9NvYbxwYLpr1/5RokS7xLQV0XUTHRtQ8LGzaiN6Z8NMVQqq
JTpfbxP/9U9TSuf1kCpsMAEHitNTBWp2YUmzDboPXVSjglaa3gUcwGcsZkgf0y3g
dn8rTI+mkrBprcvjKpSgJQlK3IX6thAmNGaLBDFKPxjCdK1AEX1CganiILYiry1s
bcNIMS6qAExiF1+i1A40l2cyFD7cR16yGlDP0HDY9SLr2anryhqsZmhT1Y46GV5W
mCrArEsln4IWioDmpIuY8mcfX3NdLJhXJB2oR2bJ9MolBtbwfE4xyDG0cSZsqrKK
ivCygKn1zV8gdQ==
-----END CERTIFICATE-----
Generated at Sat Jun 28 23:25:25 2025 by rpki-client